The Linux kernel is vulnerable to a vulnerability that allows remote attackers to execute arbitrary code on affected installations. This vulnerability can be exploited without authentication, but only on systems that have ksmbd enabled. This flaw specifically affects SMB2_TREE_DISCONNECT commands. When an object’s existence is not validated before operations are performed on it, the vulnerability occurs. By exploiting this vulnerability, an attacker can execute code in the kernel’s context
What’s new on HivePro
Get through updates and upcoming events, and more directly in your inbox